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AMENDMENTS TO THE CLAIMS 

1, (Cuirently Amended) A method of associating a pennission set with a 
code assembly based on evidence characterized by different levels of trust, the 
metho d implemented at least in part by a computing device comprising: 

identifying a first condition for association with the permission set, wherein the 
first condition references a furst element of evidence, wherein the first element of 
evidence is implicitly truste d and wherein the permission set is used to control 
operation of the code assembly during run-time : 

identifying a second condition for association with the permission set, wherein 
the second condition references a second element of evidence, wherein the second 
element of evidence is initially untrusted; 

determining whether the first condition is satisfied by the first element of 
evidence; 

determining whether the second element of evidence should be trusted based 
on the first condition; 

determining whether the second condition is satisfied by the second element of 
evidence; and 

associating the permission set with the code assembly, if both the first 
condition and the second condition are satisfied, 
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2. (Previously Presented) The method of claim 1 wherein the operation of 
receiving a first condition comprises: 

receiving the first condition and the first element of evidence within a 
membership criterion, 

3. (Previously Presented) The method of claim 1 wherein the operation of 
receiving a second condition comprises: 

receiving the second condition and the second element of evidence within a 
membership criterion, 

4. (Previously Presented) The method of claim 1 wherein the operation of 
receiving a first condition comprises: 

receiving the first condition in a membership criterion; and 
receiving the first element of evidence based on a reference included in the 
membership criterion, 

5. (Previously Presented) The method of claim 1 wherein the operation of 
receiving a second condition comprises: 

receiving the second condition in a membership criterion; and 
receiving the second element of evidence based on a reference included in the 
membership criterion. 
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6-7, (Cancelled) 

8. (Original) The method of claim 1 further comprising: 

generating a collection of code groups, each code group being associated with 
a membership criterion and a permission set, wherein the first condition and the 
second condition are received in the membership criterion associated with one of the 
code groups; and 

determining whether the code assembly is a member of the code group, based 
on the membership criterion. 

9. (Original) The method of claim 8 wherein the associating operation 
comprises: 

associating the permission set of the code group with the code assembly, if the 
code assembly is determined to be a member of the code group. 

10. (Previously Presented) The method of claim 1 further comprising; 
receiving at least a third condition referencing a third element of evidence, 

wherein the third element is initially untnisted; 

determining whether the third element of evidence should be trusted based on 
the second condition; and 
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determining whether the third condition is satisfied by the third element of the 
evidence, wherein the associating operation comprises associating the permission set 
with the code assembly, if the first condition, the second condition, and the third 
condition are satisfied. 

11. (Currently Amended) One or mor e computer-readable media having 
instnictions that, when executed on o n e or more processors perform A computer 
program product cnooding a oomputor progrom for ox e cutine on a oomputor gyatem a 
computer ajrocess for associating a permission set with a code assembly based on 
evidence characterized by different levels of trus t, tlie computer prooooa comprising: 

generating a collection of code grmips, wherein each code grouo is used to 
define a category of related code assemblies, each code group being associated with a 
membership criterion and a permission se t used to c ontrol operation of the code 
assemblv during run-time; 

receiving the membership criterion associated with one of the code groups, the 
membership criterion including at least a first condition and a second condition; 

referencing a first element of evidence in the first condition, wherein the first 
element of evidence is trusted independent of other evidence and conditions; 

referencing a second element of evidence in the second condition, wherein the 
second element of evidence is initially untrusted; 

determining whether the first condition is satisfied by the first element of 
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evidence; 

determining whether the second element of evidence should be trusted baaed 

on the first condition; 

determining whether the second condition is satisfied by the second element of 

evidence; 

evaluating the first condition and the second condition using a logical 
operation to determine membership of the code assembly in the code group; and 

associating the permission set with the code assembly, if the code assembly is 
determined to be a member of the code group. 

12. (Currently Amended) One or more cQ ^ pnter-readablc media according 
to,¥te oomputoi program produrt of daim 1 1 where in the computer process further 
comprises: 

receiving at least a third condition referencing a third element of evidence, 
wherein the third element is initially untnisted; 

determining whether the third element of evidence should be trusted based on 

the second condition; and 

determining whether the third condition is satisfied by the third element of 
evidence, wherein the associating operation comprises associating the permission set 
with the code assembly, if the first condition, the second condition, and the third 
condition are satisfied. 
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13. (Currentiy Amended) r>ne or more rAm pnter-readahle media having 
^^^ piit.er-executahle iTistmctions for performing. A uu mputor data flifiual embodied in 
u oomcr wavo by a oomputing ayotcm and onooding fl to mputor progm m f n r 
nn Tnriitnr pmPH'- ^ mcthod of associating a pennission set with a code 
assembly based on evidence characterized by different levels of trus t, tlia computer 

proooas comprising: 

receiving a first condition referencing a first element of evidence, wherein the 
first condition is associated with the permission set and the first element of evidence 
is trusted independent of other evidence and conditions; 

receiving a second condition referencing a second element of evidence, 
wherein the second condition is associated with the permission set and the second 
element is initially untrusted; 

determining whether the first condition is satisfied by the first element of 

evidence; 

determining whether the second element should be liusted based on the fust 
condition; 

determining whether the second condition is satisfied by the second element of 
evidence; and 

associating the permission set with the code assembly, if both the first and 
second conditions are saHafift H, ^herein the per mission set is used to control operation 
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of the code assembly during run-timc , 

14, (Currently Amended) One or more computer-readable media having 
instructions that., when executed on one or more computing processors^ perform A 
computer - pr€»gmm otorago medium - roadnblc by a oomputer syst e m and e ncoding a 
computer program for e x e outinfi g computer a process for associating a permission set 
with a code assembly based on evidence characterized by different levels of trustj^ 
oomput e r process comprising: 

receiving at least a first condition referencing a first element of evidence, 
wherein the first condition is associated with the permission set and the first element 
of evidence is trusted independent of other evidence and conditions; 

receiving at least a second condition referencing a second element of evidence, 
wherein the second condition is associated with the permission set and the second 
element is initially untmsted; 

determining whether the first condition is satisfied by the first element of 
evidence; 

determining whether the second element of evidence should be trusted fe^s^ 
den -based on the first condition; 

determining whether the second condition is satisfied by the second element of 
evidence; and 

associating the permission set with the code assembly, if both the first and 

leeOhayes pile 50d»a54-9256 9 of 33 ATTORNEY DOCKET NO. MSI -I ?75US 

RESPONSE TO OFFICE ACTION DATED 8/1 6/2005 APPUCaTION NO. £»/598,8 14 

PAGE 11/35 ' RCVD AT 1/30/2006 6:01:09 PM [Eastern Standard T^^^^ 



JftN 30 20B6 15:07 FR 00 



1509323B979 TO 15712738300 P. 12/35 



second conditions are eat^.fip. H , wTii^r^m the ceimission set is used to control operation 
of the code assembly during run-time . 

15. (Currently Amended) A policy manager for associating a permission 
set with a code assembly based on evidence characterized by different levels of trust, 
the policy managftr im plemented bv one or mote co mputing devices comprising: 

a code collection generator generating a collection of code groups, wherein 
each code group is used to define a cate r<^Tv of related code assembhes^each code 
group being associated with the membership criterion and a permission se t used tQ 
control operation of the code assembly duri ng run-time: 

a membership evaluator determining if the code assembly is a member of the 
code group by evaluating at least a first condition and a second condition associated 
with one of the code groups, the first condition referencing an implicitly trusted first 
element of evidence; the second condition referencing an initially untrusted second 
element of evidence, wherein a determination of trust associated with the second 
element of evidence is based on the first condition; and 

a permission set generator associating the permission set of the code group 
with the code assembly, if the code assembly is determined to be a member of the 
code group. 
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16. (Previously Presented) The policy manager of claim 15 wherein the 
membership evaluator further receives at least a third condition referencing an 
initially untrusted third element of evidence, wherein the third condition is associated 
with the permission set and a determination of trust associated withthe third element 
of evidence is dependent upon the second condition, and determines whether the third 
condition is satisfied by the third element of evidence, and 

wherein the permission set generator associates the permission set with the 
code assembly, if the first condition, the second conditioned, and the third conditions 
are satisfied. 

17. (Currently Amended) One or more computer-readable media having 
instructions that, when executed on one or more processors, perform A oomputor 
program product - encod t ng - ft - eompu te r program for e x e cuting on a comput e r syst e m - a 
computer g Lprocess for associating a permission set with a code assembly based on 
evidence characterized by different levels of trust, the computer process comprising: 

receiving one or more first conditions, each first condition being associated 
with one or more first elements of evidence, wherein each first condition is associated 
with the permission se t used to control operation of the code assembly during run- 
time : 

determining whether each fu:st condition is satisfied by an associated first 
element of evidence; 

leefthayes pile .50g»324*925S 11 of 33 attorney docket no. MS1-IS75US 

RESPONSE TO OFFICE ACTION DATED S/16/2005 APPUCATION NO. 09/598,814 

PAGE 13/35 ' RCVD AT 1/30/2006 6:01:09 PM [Eastern Standard Time] ' SVR:USPTO'EFXRF-6/33 ' DNIS:2738300 ' CSID:15093238979 ' DURATION (min-ss):0g40 



JflN 30 2006 15:08 FR 00 



15093238979 TO 15712738300 P. 14/35 



generating an indication for each first condition that is satisfied; 

receiving a second condition associated with the permission set; 

determining whether the second condition is satisfied based on the indications, 
wherein a level of trust associated with the indications depends upon a first condition 
of the one or more first conditions; and 

associating the permission set with the code assembly, if both the first 
condition in the second condition are satisfied, 

18. (Currently Amended) One or more computer-readable media according 
to Th e computeF-program product of claim 17 wherein the indication is associated 
with the first value associated with the first condition, and the operation of 
determining whether the second condition is satisfied comprises: 

collecting ^ie-a_fii3t value and additional values associated with other satisfied 
conditions to provide collected values; 

summing the collected values to provide a sum; and 

evaluating the sum against tife©-a_threshold to determine whether the second 
condition is satisfied. 

19. (Currently Amended) One or more computer-readable media according 
to, Th e comput e r program of claim 17 wherein at least one first element of evidence 
includes initially untrusted evidence^ 
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20, (Currently Amended) One or more computer-readable media according 
to The computor program of claims 17 wherein at least one indication includes 
initially untmsted evidence. 

21, (Currently Amended) One or more computer-readable media according 
to Tho oomputor program of claim 17 wherein the computer process further 
comprises: 

generating an indication for each first condition that is not satisfied. 
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